Avoid accepting suspiciously long URLs from the renderer. These can take down

the browser with OOM.

BUG=20233
TEST=NONE

Review URL: http://codereview.chromium.org/523088

git-svn-id: svn://svn.chromium.org/chrome/trunk/src@35757 0039d316-1c4b-4281-b951-d872f2087c98

1 files changed, 2 insertions, 1 deletions

diff --git a/chrome/common/common_param_traits.cc b/chrome/common/common_param_traits.cc
index 684337d..5e6880e3 100644
--- a/chrome/common/common_param_traits.cc
+++ b/chrome/common/common_param_traits.cc
@@ -5,6 +5,7 @@
 #include "chrome/common/common_param_traits.h"
 
 #include "base/gfx/rect.h"
+#include "chrome/common/chrome_constants.h"
 #include "googleurl/src/gurl.h"
 #ifndef EXCLUDE_SKIA_DEPENDENCIES
 #include "third_party/skia/include/core/SkBitmap.h"
@@ -99,7 +100,7 @@ void ParamTraits<GURL>::Write(Message* m, const GURL& p) {
 
 bool ParamTraits<GURL>::Read(const Message* m, void** iter, GURL* p) {
   std::string s;
-  if (!m->ReadString(iter, &s)) {
+  if (!m->ReadString(iter, &s) || s.length() > chrome::kMaxURLChars) {
     *p = GURL();
     return false;
   }